Overview

overview

10

Static

static

10

faa393e9d5...20.exe

windows7-x64

faa393e9d5...20.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    faa393e9d5d6d87b9622969a3626a58ba665f5f6e6e55ede4e03a75b1f751020

  • Size

    109KB

  • MD5

    239a4f3bca976bf08ea301ea1497dc1a

  • SHA1

    558e973c311b4979e3bddeff07e54ed7b6a0ff0a

  • SHA256

    faa393e9d5d6d87b9622969a3626a58ba665f5f6e6e55ede4e03a75b1f751020

  • SHA512

    5a1e0b2b6301e6a79caa58e8780168fbdcf4e3a785fc203011b38ac1a0de06a2ff92f72b3e4f18d1d9ff7b4238de1322a766e7c6ed82e9d79054408c1f6899b5

  • SSDEEP

    3072:pF6F15h/zIn5S1aj+cU9C87gGw9aINejo:aFjhLI5SG+F29aIAs

Score
10/10
gh0strat

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • faa393e9d5d6d87b9622969a3626a58ba665f5f6e6e55ede4e03a75b1f751020
    .exe windows:6 windows


    Headers